github-pages-deployer
Pass
Audited by Gen Agent Trust Hub on Mar 20, 2026
Risk Level: SAFE
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill generates a GitHub Actions workflow that utilizes official actions from the 'actions' organization on GitHub (e.g., actions/checkout, actions/deploy-pages). These are standard, well-known components for CI/CD and are treated as safe.
- [COMMAND_EXECUTION]: Provides users with standard Git commands to initialize and push a repository to GitHub.
- [PROMPT_INJECTION]: The skill ingests HTML content provided by the user or from previous steps in the conversation to create the site. Ingestion points: The html_content field in the input schema (SKILL.md). Boundary markers: Absent; the content is placed directly into an index.html file. Capability inventory: The skill generates a repository structure and a GitHub Actions workflow for deployment; it does not execute the provided HTML content itself. Sanitization: No explicit sanitization of the input HTML is performed before file generation.
Audit Metadata